iberogast.es

Issued by R3

About this certificate

This digital certificate with serial number 03:23:8e:11:b6:90:a1:04:cd:4e:74:1e:86:28:4a:8e:c5:10 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=iberogast.es

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:23:8e:11:b6:90:a1:04:cd:4e:74:1e:86:28:4a:8e:c5:10
Serial Number (int): 273435582984818875465586774473850653426960
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 63:95:fe:74:85:57:ee:3c:9b:c3:b8:6e:d3:56:1f:7c:ba:27:19:72
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 03:28:2f:84:4f:4a:d1:07:61:17:eb:32:5c:e6:9b:0e:de:17:24:5f
Fingerprint (sha256): aa:a2:ca:14:0e:96:d7:15:8f:ee:b0:fe:71:94:7e:39:8e:2d:f2:16:eb:75:9a:04:6e:ef:83:68:5c:66:a4:fa

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate iberogast.es

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for iberogast.es

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

iberogast.es

Other certificates including the domain name iberogast.es

(limited to 100 certificates)
www.iberogast.es
www.iberogast.es
sanssl20.bayer.com
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
iberogast.es
www.iberogast.es
iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
sanssl20.bayer.com
www.iberogast.es
www.iberogast.es
iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
sanssl20.bayer.com
www.iberogast.es
iberogast.es
www.iberogast.es
www.iberogast.es
sanssl20.bayer.com
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
www.iberogast.es
sanssl20.bayer.com
www.iberogast.es
www.iberogast.es
www.iberogast.es
sanssl20.bayer.com
iberogast.es

Certificate

The complete raw certificate details for iberogast.es in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyIdoNWBw0Er3fOVf65S0
vPcv57EsBdk7zoDwpmrFAtWAEeSXGZdzzRwvIIvYBJ3jZm8+Cz9llVwRbQbqYBiI
uzxbnqHfKf5NBdLYE3toIp2iq6fo84vwmWvL1SIBiBzxtqy1doOT8BTUiAKwffam
VDipv1ygTb561gxedQ9HNs39Z5G1wvR9e5fgbtnT7JdLvI5iMbiAS6qaAtTJHOSL
yhn1FFXqB/RXGp1R5/DKK/dN7YQw/3iLiYHoXgd/sMiYQYYti6qpkkWkyJ1V7O5w
4fdWgWAzR4TJFRTiR0Qatl0i8gIzWqiTJe593Ha3wBqTlqI+3Fcv9WQ/HN0RSU2H
5lZM2b24NExJvQEyHIhfaUgXa43eOh6YR93d86o985yq1Y4AGqia+QYB3idi306+
IEjEWTEAR3pQp+vZydqFWWO3IMIsgyJGafVG5esaS2LZkKrtvAWycWH3Ql4nkx+1
KIl6uYpQdzF3Dj213u3FU+RPRtMsnnYuaj/V6W/9TlL0OXHUZddhUP4j0x0hr9nt
tC+5pe7WffYzNf2zQarK1bc6iDcl3WLWIHgyvHpiqfqwJcBQyM7+FJK0hQMIpKRg
UIGcn2jyfucMlYi/ZIuEucLHPHRtQXjz5Jjv7W85zp7ixpv8W/MEsMAsjvnZhXqY
UjN7psAzH7Hvojb6Ro8XbB8CAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 273435582984818875465586774473850653426960
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-24 07:28:05 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-23 07:28:04 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'iberogast.es'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 818086675429451637412640345173627026218439230609010394659642304414011516024330959640527708616490931214788931215405233438619101886733199264908817133948134752499688321825182087690775636132156851009923351507227730162421679920434882273745208437286470948935982490164806287137864992182727837344529004989503305178450966993582502790009961538220234266424835012715274401525495687332188861457666459371024708738263723190790698156471657750263596177019689401869667588620780389549443787505625597826429576720791463137498855710017067170788464251440517550941204727553267534168532121763378516641226265354674636103023610376654687842171989124090437641424707336071427809307057892101387346497782645292478499810308635474676858596472548122658068298069600203064480240810428810971912830434971587207295922586048910871757191688565022376563125759034810926492159277084814596715731390207039259884803051656380066632607601747040564749287700151129911106896561213167848397677141751103312385231391452369891875430809492154471793135342225519423322016952542535586459742651089876387331128296372210817985314591765741464909684057195685557274539172830262890230781250371748090303863590210932572860763708696296271197427934443572516481056533819787727734507165598192999665155664927
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6395fe748557ee3c9bc3b86ed3561f7cba271972
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iberogast.es'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c9af03e63000004030047304502204af8f92a28591f6047cda80a2034e56cfb429e2196506463005450af53b0d68a022100eeb1f0c06814bd868535cc5322afb9a6bcec629b0dbf60375905caf67e763264007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c9af03e710000040300483046022100e52dff5aaae3f24c32bfed9e89a3cea72c8431c1bd775fe7460514defa74bd02022100e9aae0d0da8d4123fee6cc565a19d790ef7675e2bf19d185185fbca7a0d7f9c9
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		009a81b3193775bd32f871b37f02862e81076b471b2fe6b252150b8c94d1978cd8204a0fd487bc2ec2433d70d20b564e6085c0d5d548b3647a0d25c4a93d6076607df09a13a6c65f0e6d4abf77ea101caf788b697cc0fac518602abf5ec95e7d5018d808e64a7debec9b5c1f40d236514cbf181f007be0b209331dd42d663d03099760e1b0da918044368c6478251a4755f501e450c873f6c14af4dd0e26886ce583631f079c1f4b9901919da1ac5dad794842012f81269cb81bf2088ac5e398f95005aa0d777ff55e3fb4dc9ce37ab764ef4fae3da121a4d6e68eb70b5f89880ce6e9130622696a84b01c40793889b94a80f2b841c48e4a436ca69e2aa40c52b1